You are viewing a single comment's thread from:

RE: 一个低级版本的STEEM区块链浏览器 / STEEM blockchain explorer

in #steemdev6 years ago (edited)

好像看到一个php的安全弱点。我试试了xss attack一下,感觉能操作呀。

"><script>alert('a');在input里,就能弄掉半个页面。

Screen Shot 2018-11-08 at 9.38.16 PM.png

如何预防https://stackoverflow.com/questions/1996122/how-to-prevent-xss-with-html-php

6 years ago in #steemdev by
$0.13
  • Past Payouts $0.13, 0.00 TRX
  • - Author $0.09, 0.00 TRX
  • - Curators $0.03, 0.00 TRX
1 vote
Reply 2
Sort:  
  • Trending
    • [-]
     6 years ago 

    感谢指出
    加油吧,少年👍

    $0.00
      Reply

      Coin Marketplace

      STEEM 0.16
      TRX 0.13
      JST 0.027
      BTC 60589.35
      ETH 2628.62
      USDT 1.00
      SBD 2.53